I have Comodo 18.104.22.168. The Component Monitor is set to Learning. All other settings (Application Monitor, Network Monitor, and App. Behavior Analysis) are On. I also have Antihook 22.214.171.124 Free, running in Fingerprint mode. Every time I start a program like Firefox (or IE or Thunderbird, etc.), I get a Security Alert from Comodo saying the program is trying to act as a server. In the Security Considerations section, I'm told that Antihook has modified the program in memory. I check the remember box, and Allow, but if I close the program and restart it, I get the same message. Short of turning off the "Monitor inter-process memory modifications" under "Application Behavior Analysis" (which does work), or telling Comodo to skip loopback TCP connections, is there any way stop these messages (which I don't think I should be getting after the first one)? Or should I be be looking at Antihook? Also, if I do skip loopback TCP connections, then Firefox, Opera, and other browsers give a new set of warnings about the programs trying to connect to the internet with the same Security Considerations (Antihook modified program in memory) and same behavior (Say Remember and Allow; get exact same warnings next time).